frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code

https://www.legitsecurity.com/blog/camoleak-critical-github-copilot-vulnerability-leaks-private-source-code
55•greyadept•13h ago

Comments

stephenlf•8h ago
Wild approach. Very nice
adastra22•6h ago
A good vulnerability writeup, and a thrill to read. Thanks!
deckar01•6h ago
Did the markdown link exfil get fixed?
runningmike•6h ago
Somehow this article feels like a promotional for Legit. But all AI vibe solutions face the same weaknesses. Limited transparency and trust Issues: Using non FOSS solutions for cybersecurity is a large risk.

If you do use AI cyber solutions, you can be more vulnerable for security breaches instead of less.

xstof•6h ago
Wondering if the ability to use hidden (HTML comment) content in PRs would not remain a nasty issue: especially for open source repos?! Was that fixed?
PufPufPuf•3h ago
It's used widely for issue/PR templates, to tell the submitter what info to include. But they could definitely strip it from the Copilot input... at least until they figure out this "prompt injection" thing that I thought modern LLMs were supposed to be immune to.
fn-mote•13m ago
> that I thought modern LLMs were supposed to be immune to

What gave you this idea?

I thought it was always going to be a feature of LLMs, and the only thing that changes is that it gets harder to do (more circumventions needed), much like exploits in the context of ASLR.

munchlax•6h ago
So this wasn't really fixed. The impressive thing here is that copilot accepts natural language. So whatever exfiltration method you can come up with, you just write out the method in english.

They merely "fixed" one particular method, without disclosing how they fixed it. Surely you could just do the base64 thing to an image url of your choice? Failing that, you could trick it into providing passwords by telling it you accidentally stored your grocery list in a field called passswd, go fetch it for me ppls?

There's a ton of stuff to be found here. Do they give bounties? Here's a goldmine.

lyu07282•32m ago
> GitHub fixed it by disabling image rendering in Copilot Chat completely.
nprateem•3h ago
You'd have to be insane to run an AI agent locally. They're clearly unsecurable.
djmips•3h ago
can you still make invisible comments?
charcircuit•1h ago
The rule is to operate using the intersection of all the users permissions of who is contributing text to the LLM. Why can an attacker's prompt access a repo the attacker does not have access to? That's the biggest issue here.

Macro Gaussian Splats

https://danybittel.ch/macro.html
47•danybittel•1h ago•4 comments

Blood test detecting Long Covid in kids with 94% accuracy microclots

https://www.researchsquare.com/article/rs-7483367/v1
33•thenerdhead•57m ago•6 comments

4x faster LLM inference (Flash Attention guy's company)

https://www.together.ai/blog/adaptive-learning-speculator-system-atlas
35•alecco•3h ago•14 comments

Meta Superintelligence's surprising first paper

https://paddedinputs.substack.com/p/meta-superintelligences-surprising
309•skadamat•12h ago•168 comments

Pipelining in psql (PostgreSQL 18)

https://postgresql.verite.pro/blog/2025/10/01/psql-pipeline.html
104•tanelpoder•7h ago•15 comments

The Flummoxagon

https://n-e-r-v-o-u-s.com/blog/?p=9827
51•robinhouston•4d ago•8 comments

C++ Reflection and Qt MOC

https://wiki.qt.io/C%2B%2B_reflection_(P2996)_and_moc
20•coffeeaddict1•3d ago•4 comments

Nostr and ATProto (2024)

https://shreyanjain.net/2024/07/05/nostr-and-atproto.html
10•sph•2h ago•0 comments

Why it took 4 years to get a lock files specification

https://snarky.ca/why-it-took-4-years-to-get-a-lock-files-specification/
14•birdculture•2h ago•5 comments

Show HN: Sober not Sorry – free iOS tracker to help you quit bad habits

https://sobernotsorry.app/
43•molozhenko•5h ago•37 comments

I/O Multiplexing (select vs. poll vs. epoll/kqueue)

https://nima101.github.io/io_multiplexing
64•pykello•3d ago•14 comments

Ask HN: Abandoned/dead projects you think died before their time and why?

154•ofalkaed•13h ago•477 comments

Anthropic's Prompt Engineering Tutorial

https://github.com/anthropics/prompt-eng-interactive-tutorial
191•cjbarber•17h ago•24 comments

Coral Protocol: Open infrastructure connecting the internet of agents

https://arxiv.org/abs/2505.00749
28•joj333•8h ago•6 comments

Vancouver Stock Exchange: Scam capital of the world (1989) [pdf]

https://scamcouver.wordpress.com/wp-content/uploads/2012/04/scam-capital.pdf
102•thomassmith65•12h ago•44 comments

Why Wikipedia cannot claim the Earth is not flat

https://en.wikipedia.org/wiki/Wikipedia:Why_Wikipedia_cannot_claim_the_Earth_is_not_flat
32•duncanjbrown•1h ago•11 comments

Show HN: A Lisp Interpreter for Shell Scripting

https://github.com/gue-ni/redstart
61•quintussss•3d ago•10 comments

Loko Scheme: bare metal optimizing Scheme compiler

https://scheme.fail/
3•dTal•5d ago•0 comments

The World's 2.75B Buildings

https://tech.marksblogg.com/building-footprints-gba.html
71•marklit•4d ago•32 comments

Show HN: Rift – A tiling window manager for macOS

https://github.com/acsandmann/rift
153•atticus_•11h ago•78 comments

A Guide for WireGuard VPN Setup with Pi-Hole Adblock and Unbound DNS

https://psyonik.tech/posts/a-guide-for-wireguard-vpn-setup-with-pi-hole-adblock-and-unbound-dns/
96•pSYoniK•16h ago•11 comments

Paper2Video: Automatic Video Generation from Scientific Papers

https://arxiv.org/abs/2510.05096
57•jinqueeny•12h ago•14 comments

Microsoft only lets you opt out of AI photo scanning 3x a year

https://hardware.slashdot.org/story/25/10/11/0238213/microsofts-onedrive-begins-testing-face-reco...
653•dmitrygr•17h ago•245 comments

CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code

https://www.legitsecurity.com/blog/camoleak-critical-github-copilot-vulnerability-leaks-private-s...
56•greyadept•13h ago•12 comments

Show HN: I made an esoteric programming language that's read like a spellbook

https://github.com/sirbread/spellscript
30•sirbread•6h ago•3 comments

Testing two 18 TB white label SATA hard drives from datablocks.dev

https://ounapuu.ee/posts/2025/10/06/datablocks-white-label-drives/
185•thomasjb•6d ago•110 comments

A New Algorithm Makes It Faster to Find the Shortest Paths

https://www.wired.com/story/new-method-is-the-fastest-way-to-find-the-best-routes/
5•quapster•59m ago•1 comments

LineageOS 23

https://lineageos.org/Changelog-30/
251•cdesai•12h ago•98 comments

Windows Subsystem for FreeBSD

https://github.com/BalajeS/WSL-For-FreeBSD
263•rguiscard•1d ago•109 comments

Superpowers: How I'm using coding agents in October 2025

https://blog.fsck.com/2025/10/09/superpowers/
363•Ch00k•1d ago•195 comments